Benjamin Dauvergne
9f57d30ebc
Tools: add script to generate a listing of Lasso ABI
...
* tools/api.py:
use parser from the binding generator to output a list of symbols
* bindings/bindings.py;
add private flags to not clobber 'private' fields of structures or
methods not exported in bindings like _get_type.
2010-01-14 16:18:42 +00:00
Benjamin Dauvergne
0d1b1a624a
ID-WSF: separate ID-WSF strings into their own header
2010-01-14 16:18:39 +00:00
Benjamin Dauvergne
dac5738c6b
start NEWS file for 2.2.90
2010-01-14 16:18:38 +00:00
Benjamin Dauvergne
f3d87217f2
Tests integration: remove save_html hooks, after fed termination logout button should still be there
2010-01-14 16:18:36 +00:00
Benjamin Dauvergne
020a7583ab
Bindings python: use is_cstring for matching GList element type
2010-01-14 16:18:34 +00:00
Benjamin Dauvergne
ea39436622
SAML 2.0 Logout: undo some change to when the assertion is removed
...
* lasso/saml-2.0/logout.c:
- do not remove the assertion in init_request, as before only if all
fails (event REDIRECT is unsupported).
- in process_response_msg remove the assertion if we are the IdP or
if there is no error.
- in validate_request, remove the assertion if there is no error.
I think that there will be more updates to this in the future.
2010-01-14 16:18:33 +00:00
Benjamin Dauvergne
98a48032cb
Bindings: make is_cstring usable with tuple and with direct type
2010-01-14 16:18:31 +00:00
Benjamin Dauvergne
f87a55e9ef
Core: remove warning emiting macros from lasso_session_remove_assertion
...
* lasso/id-ff/session.c:
we already return error code, no need to log more warnings.
2010-01-14 16:18:29 +00:00
Benjamin Dauvergne
9d544c49d0
SAML 2.0: report missing request when creating artifact resolve response, fix typo in lasso_saml20_profile_build_post_response_msg
2010-01-14 16:18:28 +00:00
Benjamin Dauvergne
869768bc35
SAML 2.0: Fix typo in lasso_saml20_login_build_authn_response_msg
2010-01-14 16:18:26 +00:00
Benjamin Dauvergne
b30498aec6
ID-FF&SAML2: if use is not defined on a key descriptor use the key for any use
...
* lasso/id-ff/provider.c lasso/saml-2.0/provider.c: if the "use"
attribute is not set on a KeyDescriptor, use the key for signing and
encryption.
2010-01-14 16:18:24 +00:00
Benjamin Dauvergne
c14fdb11ec
Tests SAML2: use & test encryption
2010-01-12 15:40:29 +00:00
Benjamin Dauvergne
9554334c91
SAML 2.0: add saml2_helper.h to include files to install
2010-01-12 15:40:28 +00:00
Benjamin Dauvergne
9efcaac3f3
Tests: fix inclusion of id-wsf 2.0 tests
2010-01-12 15:40:26 +00:00
Benjamin Dauvergne
cc502b2b98
Core: add new SAML 2.0 public header to top level header lasso.h
2010-01-12 15:40:24 +00:00
Benjamin Dauvergne
df258845c7
ID-WSF 2.0: remote saml2_login_private.h from Makefile.am
2010-01-12 15:40:23 +00:00
Benjamin Dauvergne
b77c9cf2e8
Bindings: add support for time_t to bindings, add support for 'string' type for list in java binding
2010-01-12 15:40:21 +00:00
Benjamin Dauvergne
7142d50d16
in saml2_helper.{c,h}, remote const modifier from time_t type
2010-01-12 15:40:20 +00:00
Benjamin Dauvergne
436c8cb232
in saml-2.0/name_id_management.c: handle NewEncryptedID, only encrypt if needed
2010-01-12 15:40:18 +00:00
Benjamin Dauvergne
e956ca8818
in saml-2.0/logout.c: remove commented code, only encrypt if needed, intialize local variables
2010-01-12 15:40:16 +00:00
Benjamin Dauvergne
59f8ae0944
in lasso_saml20_login_init_idp_initiated_auhtn_request, do not use init_authn_request, manually create the request.
2010-01-12 15:40:15 +00:00
Benjamin Dauvergne
76ae81022c
in lasso_saml20_login_init_authn_request, use saml-2.0/profile.c functions to reduce code size
2010-01-12 15:40:14 +00:00
Benjamin Dauvergne
63206b32f2
in saml-2.0/profile.c, in lasso_saml20_build_response_msg, when no url is given, only stop for bindings needing one
2010-01-12 15:40:12 +00:00
Benjamin Dauvergne
39eba085a5
in saml-2.0/profile.c, in lasso_saml20_profile_init_response make direct access
2010-01-12 15:40:11 +00:00
Benjamin Dauvergne
926bfeee2c
in saml-2.0/profile.c, in lasso_saml20_init_request better check for supported bindings, do not check for identity or session, report SESSION_NOT_FOUND only if first_in_session is used, do not stop on missing name_id.
2010-01-12 15:40:09 +00:00
Benjamin Dauvergne
845e302415
in saml2_helper.c, remove dead code
2010-01-12 15:40:08 +00:00
Benjamin Dauvergne
e06e9db029
SAML 2.0: in lasso_saml20_provider_accept_http_method, add HTTP-Artifact-POST case, better check for bad inputs, and handle special SingleSignOn case
2010-01-12 15:40:07 +00:00
Benjamin Dauvergne
003916b452
Core Profile: remove need for identity in lasso_profile_get_nameIdentifier
2010-01-12 15:40:06 +00:00
Benjamin Dauvergne
9caacc3bb6
Core Server: make default to load signing private key also as encryption private key
2010-01-12 15:40:04 +00:00
Benjamin Dauvergne
5ac1c303cc
Commit to delete
2010-01-12 15:40:03 +00:00
Benjamin Dauvergne
413932306d
Core: rewrite lasso_assertion_encrypt using lasso_xmlsect_load_key and add recipient argument
2010-01-12 15:40:01 +00:00
Benjamin Dauvergne
a237cd1057
Core: add simple function to load key from any format
2010-01-12 15:39:59 +00:00
Benjamin Dauvergne
d42c16e239
Core Node: add args to lasso_node_encrypt to set recipient of an encrypted element
2010-01-12 15:39:57 +00:00
Benjamin Dauvergne
ddbe21ae5b
Binding python: provide old binding name for set_encryptionMode
2010-01-12 15:39:55 +00:00
Benjamin Dauvergne
2ff13e5414
SAML 2.0: overhaul for ubuquitous binding support, still need work for HTTP-Artefact
2010-01-12 15:39:48 +00:00
Benjamin Dauvergne
0988cc2ec8
Core: in profile.c, profile.h, profileprivate.h, add a new attribute to express signature needs
2010-01-12 15:39:45 +00:00
Benjamin Dauvergne
601617843b
Core: in identity.c, do not emit trace when lasso_identity_get_federation fails
2010-01-12 15:39:43 +00:00
Benjamin Dauvergne
ac3a687518
XML Core: in xml.c, private.h, add a lasso_node_remove_signature function
2010-01-12 15:39:42 +00:00
Benjamin Dauvergne
01dad5fd05
XML: fill node_data->{certificate,private_key}_file_offset for nodes with signatures
2010-01-12 15:39:40 +00:00
Benjamin Dauvergne
d461fe3957
Core: in xml/private.h, add new field to LassoNodeClassData for private_key and certificate handling
2010-01-12 15:39:38 +00:00
Benjamin Dauvergne
cf45d9fc99
Core: in provider.h, add LASSO_PROVIDER_ROLE_BOTH
2010-01-12 15:39:37 +00:00
Benjamin Dauvergne
1eb34af43f
Core: in profile.c, make lasso_profile_get_nameIdentifier work for transient federations
...
* lasso/id-ff/profile.c:
if no LassoIdentity is accessible try to get a name identifier
through the assertion in the LassoSession object. This allows the
logout profile to work without an identity object (which is normal
since logout does not modify the federation status).
2010-01-12 15:39:35 +00:00
Benjamin Dauvergne
85161f15a7
Core: in provider.h, add new SAML 2.0 HTTP-Method, PAOS
2010-01-12 15:39:34 +00:00
Benjamin Dauvergne
4fe35b69cc
SAML 2.0: add new function to factorize adding signature to a message
2010-01-12 15:39:33 +00:00
Benjamin Dauvergne
56bd9e2405
Fix mitm attack using the AssertionConsumerURL property on requests
...
* lasso/saml-2.0/login.c: check that the URL is know before using it
* lasso/saml-2.0/provider.c lasso/saml-2.0/providerprivate.h:
add a function to check that an URL corresponds to a know
AssertionConsumer of the given provider.
2010-01-12 15:39:31 +00:00
Benjamin Dauvergne
21cc1bf7ee
ID-WSF 2.0: fix in documentation
2010-01-12 15:39:28 +00:00
Benjamin Dauvergne
fcd8739f49
Bindings: simplify GList handling
2010-01-04 09:16:00 +00:00
Benjamin Dauvergne
914a176d99
XML: add element type annotation to all GList fields
2010-01-04 09:15:55 +00:00
Benjamin Dauvergne
65642d732c
Bindings: in bindings/python/Makefile.am, precise generated files dependencies
2010-01-04 09:15:48 +00:00
Benjamin Dauvergne
42c81da4f4
XML: move SOAP API to its own sub directory
2010-01-04 09:15:42 +00:00